fkie_cve-2014-1684
Vulnerability from fkie_nvd
Published
2014-03-03 16:55
Modified
2025-04-12 10:46
Severity ?
Summary
The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file.
References
Impacted products
{ "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:*", "matchCriteriaId": "09D32CDD-F68C-4202-BF38-31CE8E52914B", "versionEndIncluding": "2.1.2", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "D1925D17-564A-4D8C-87FB-D3C731FA0612", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "70BD6170-AD0D-4E95-8998-8B5CE8F0E3AF", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "9B06DCD7-56C5-4B25-936E-07D766109FB8", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "29AD31C5-B119-44EF-8627-2C480860BAD2", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "692C36B2-2A55-44EA-B80E-D7EDE384BA7D", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "CEAD1ED9-4FA1-47D9-87A0-9D6B4C6771DE", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "B8E2A762-C13C-4BDD-AD86-7A52609D693D", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "0042DAC1-A91B-40A6-A379-9C345CF13E4B", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "8D13741F-8A82-44F6-8D73-98451A180529", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "E52C6189-71F1-4A3A-BC08-94087AE1FCE6", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "591C6696-07C0-463A-B986-AD4FA6985AC1", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "8342E310-43DE-46C0-85D9-E1D1F9F554E8", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "FAFBBE61-2E34-4CD2-96D2-89A85E66C9AF", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "E74E71F3-984E-4CF3-900A-F80E7103D3C5", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "B8596527-4778-4CCD-ABBB-90CA434D91E1", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "7CA6D5F5-8EB7-4DA7-BD6C-CAF45052DCB1", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.7:*:*:*:*:*:*:*", "matchCriteriaId": "6DF8ED57-EE37-4B1D-B094-B3CA22E45127", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.8:*:*:*:*:*:*:*", "matchCriteriaId": "E42A1C4B-91EE-417B-A254-9D0E93FCF3B6", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.9:*:*:*:*:*:*:*", "matchCriteriaId": "4A0D56A0-6217-4DCF-807A-A17349D63D6B", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.10:*:*:*:*:*:*:*", "matchCriteriaId": "AC9CA897-FAD0-41AF-97B0-1F44D8C89CF7", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.10.1:*:*:*:*:*:*:*", "matchCriteriaId": "7CA6FC57-C7FA-4F6E-8B39-083EE477D4DB", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.11:*:*:*:*:*:*:*", "matchCriteriaId": "D442FC10-1527-4736-AE94-8B65F3601F70", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.12:*:*:*:*:*:*:*", "matchCriteriaId": "2AA85720-8DE1-49C8-8A23-1739FBF42B86", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:1.1.13:*:*:*:*:*:*:*", "matchCriteriaId": "F1161807-F82D-4B4B-BF1A-27FEBD7F8715", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "1928547F-4689-43CD-9C66-7097AE360669", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "A3FD4FB1-A4E7-4712-B864-0F85D957E81D", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "2A6AE8D3-46C9-441B-886C-63D9A28DB918", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "99D5CFF3-0643-4AFD-B5D9-7C7C3B18C29B", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "8F2132F9-D49A-468F-94F0-BBEC3C4D4E24", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "E695AC57-C61E-4EE7-A5F1-94B086C03130", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "3FB8545D-A954-4366-B807-6521356AAC18", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "0716C113-BD32-4459-BA81-10E89128FE91", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "D51EE394-663F-4692-AC6D-CA1E9D5BAFC0", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "72F82B8F-25FC-443C-8A96-A73A1E4FA4EA", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "ACF50CC5-95CE-42EF-9606-5DF4C5CA5893", "vulnerable": true }, { "criteria": "cpe:2.3:a:videolan:vlc_media_player:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "86A44FE9-FA19-4CB8-8E85-0034951B4C12", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "cveTags": [], "descriptions": [ { "lang": "en", "value": "The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file." }, { "lang": "es", "value": "La funci\u00f3n ASF_ReadObject_file_properties en modules/demux/asf/libasf.c en el Demuxer ASF en VideoLAN VLC Media Player anterior a 2.1.3 permite a atacantes remotos causar una denegaci\u00f3n de servicio (error de divisi\u00f3n por cero y ca\u00edda) a trav\u00e9s de un tama\u00f1o m\u00ednimo y m\u00e1ximo de cero del paquete de datos en un archivo ASF." } ], "id": "CVE-2014-1684", "lastModified": "2025-04-12T10:46:40.837", "metrics": { "cvssMetricV2": [ { "acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false } ] }, "published": "2014-03-03T16:55:04.287", "references": [ { "source": "cve@mitre.org", "url": "http://git.videolan.org/gitweb.cgi/vlc.git/?p=vlc.git%3Ba=commitdiff%3Bh=98787d0843612271e99d62bee0dfd8197f0cf404" }, { "source": "cve@mitre.org", "tags": [ "Exploit" ], "url": "http://www.elsherei.com/?p=269" }, { "source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201603-08" }, { "source": "cve@mitre.org", "tags": [ "Exploit" ], "url": "https://trac.videolan.org/vlc/ticket/10482" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://git.videolan.org/gitweb.cgi/vlc.git/?p=vlc.git%3Ba=commitdiff%3Bh=98787d0843612271e99d62bee0dfd8197f0cf404" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Exploit" ], "url": "http://www.elsherei.com/?p=269" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.gentoo.org/glsa/201603-08" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Exploit" ], "url": "https://trac.videolan.org/vlc/ticket/10482" } ], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [ { "description": [ { "lang": "en", "value": "CWE-189" } ], "source": "nvd@nist.gov", "type": "Primary" } ] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…